The collateral repository for The KQL Mysteries series
☆26Mar 8, 2024Updated 2 years ago
Alternatives and similar repositories for KQLMysteries
Users that are interested in KQLMysteries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Programming Microsoft Sentinel book☆24Dec 13, 2023Updated 2 years ago
- KQL example queries for working in Azure☆37Dec 1, 2025Updated 4 months ago
- A series of cloud focused KQL queries for threat hunting and DFIR☆12Oct 21, 2025Updated 5 months ago
- AzureKitty is an Office 365 and Azure configuration audit tool☆15Jan 28, 2024Updated 2 years ago
- Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.☆147Updated this week
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆116Jan 18, 2026Updated 3 months ago
- ☆16Dec 4, 2023Updated 2 years ago
- Azure Sentinel KQL☆472Jul 28, 2025Updated 8 months ago
- Code included as part of the MustLearnKQL blog series☆1,159Jan 30, 2026Updated 2 months ago
- KQL queries for cyber defense and for solving daily issues☆55Jul 28, 2025Updated 8 months ago
- Copilot for Security Tools☆18Apr 19, 2024Updated 2 years ago
- Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.☆489Nov 22, 2024Updated last year
- Open source repository to help others learn about IaC and the various flavors☆18Apr 16, 2024Updated 2 years ago
- ☆65Dec 22, 2025Updated 3 months ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Ian Hanley's deceptively simple KQL queries.☆67Apr 10, 2026Updated last week
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆197Mar 16, 2026Updated last month
- Microsoft Sentinel related content☆38Jan 22, 2025Updated last year
- Metasploitable3 CTF Write-up☆40Dec 12, 2017Updated 8 years ago
- Terraform Azure Verified Resource Module for DevOps Pools☆21Mar 18, 2026Updated last month
- Repository with Sample KQL Query examples for Threat Hunting☆218Sep 1, 2022Updated 3 years ago
- KQL Queries for Advanced Hunting / Log Analytics☆13Jan 29, 2026Updated 2 months ago
- Scripts and Content for working with Open AI☆170Apr 18, 2025Updated last year
- Collection of my scripts☆12Jun 3, 2016Updated 9 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Mavoc is an Automated c2 Windows and Linux Pentesting Tool used to generate reverse shell and deploy attacking scripts to host machines…☆45Feb 4, 2024Updated 2 years ago
- Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)☆239Updated this week
- Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management☆18Jan 24, 2024Updated 2 years ago
- ☆14Jun 12, 2025Updated 10 months ago
- Content Repo for Demystifying KQL Tutorial Series☆73Sep 1, 2024Updated last year
- ☆15Dec 20, 2022Updated 3 years ago
- Session material from my conference presentation at Live360\Techmentor in Orlando,November 2023☆11Nov 14, 2023Updated 2 years ago
- MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore☆65Dec 26, 2022Updated 3 years ago
- An automated tool kit that clones sites and builds malicious javascript , deploys public Tunneling and send info through telegram Bot☆61Mar 2, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- KQL Queries☆34Mar 19, 2026Updated last month
- The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …☆11Aug 31, 2018Updated 7 years ago
- Recovered samples, extracted Wasm/binaries, decoded payloads & analysis scripts from the Coruna iOS/macOS exploit kit (b27.icu). 28 JS mo…☆53Mar 9, 2026Updated last month
- Give AI agents secure access to your accounts - without sharing your credentials☆45Updated this week
- A PowerShell OSD wizard created based on the MDT UDI Wizard functionality☆20May 15, 2025Updated 11 months ago
- ☆12Mar 28, 2026Updated 3 weeks ago
- NIST based open source security automation delivered as AWS cloudformation☆20Jan 8, 2020Updated 6 years ago